🔥 Trending CVEs - Last 90 Days

Tenda AX-1806 routers running firmware v1.0.0.1 contain a stack overflow vulnerability in the serverName parameter that allows attackers to crash the ...

CVE-2026-21889 is an improper access control vulnerability in Weblate where screenshot images were served directly by the HTTP server without authenti...

This vulnerability allows unauthenticated attackers to retrieve plaintext passwords for all users, including administrators, via exposed APIs in BLUVO...

This vulnerability allows a local user on a Windows system to manipulate the Harmony SASE client to write or delete files outside its intended certifi...

This SQL injection vulnerability in the WordPress Shipping Rate By Cities plugin allows unauthenticated attackers to inject malicious SQL queries thro...

Kyocera Command Center RX ECOSYS M2035dn has a directory traversal vulnerability that allows unauthenticated attackers to read sensitive system files ...

Jervis versions before 2.2 use vulnerable PKCS1Encoding for RSA encryption, making them susceptible to Bleichenbacher padding oracle attacks. This cou...

Jervis versions before 2.2 use deterministic AES initialization vectors derived from passphrases, making encrypted data vulnerable to cryptographic at...

Jervis versions before 2.2 incorrectly use 32-character padding instead of 64-character padding for SHA-256 hashes, which could lead to hash collision...

This vulnerability in Jervis (a library for Jenkins pipeline scripts) uses a weak key derivation method where the same password always produces the sa...

Jervis versions before 2.2 use java.util.Random() for timing attack mitigation, which is not cryptographically secure. This vulnerability could allow ...

CVE-2025-68931 is a cryptographic vulnerability in Jervis library versions before 2.2 where AES/CBC/PKCS5Padding lacks authentication, enabling paddin...

This vulnerability in Azure Core shared client library for Python allows deserialization of untrusted data, enabling an authorized attacker to execute...

This vulnerability in Windows Admin Center allows an authorized attacker to bypass cryptographic signature verification, enabling local privilege esca...

A race condition vulnerability in Windows SMB Server allows authenticated attackers to execute code with elevated privileges over the network. This af...

A race condition vulnerability in Windows SMB Server allows authenticated attackers to escalate privileges over the network by exploiting improper syn...

This vulnerability in Windows HTTP.sys allows authenticated attackers to escalate privileges over a network connection. It affects Windows systems run...

A race condition vulnerability in Windows SMB Server allows authenticated attackers to elevate privileges over the network. This affects Windows syste...

A race condition vulnerability in Windows SMB Server allows authenticated attackers to elevate privileges over the network. This affects Windows syste...

A null pointer dereference vulnerability in Windows LSASS allows attackers to cause a denial of service by crashing the service. This affects Windows ...

This CVE describes a use-after-free vulnerability in Windows LSASS that allows authenticated attackers to execute arbitrary code remotely over a netwo...

A race condition vulnerability in Windows SMB Server allows authenticated attackers to escalate privileges over the network. This affects Windows syst...

This Windows Kerberos vulnerability allows authenticated attackers to elevate privileges over a network by exploiting reliance on untrusted inputs in ...

This vulnerability allows an unauthorized attacker on an adjacent network to execute arbitrary code on Windows systems running vulnerable Windows Depl...

A vulnerability in HPE Instant On Access Points router mode configuration exposes internal network configuration details through packet inspection. Ma...

A vulnerability in HPE Networking Instant On Access Points allows attackers to send specially crafted packets that cause devices to become unresponsiv...

This directory traversal vulnerability in Eptura Archibus allows attackers to access files outside the intended directory through the 'Run script' and...

Dell SupportAssist OS Recovery versions before 5.5.15.1 create temporary files with insecure permissions, allowing local low-privileged attackers to m...

A denial-of-service vulnerability in Firefox and Thunderbird's DOM Service Workers component allows attackers to crash the browser or email client. Th...

This vulnerability affects multiple Siemens SIMATIC industrial control system modules. An attacker can send a specially crafted S7 protocol disconnect...

A Denial of Service vulnerability exists in cpp-httplib where compressed HTTP request bodies are not properly limited after decompression. Attackers c...

This vulnerability allows remote attackers to read arbitrary files from the osTicket server filesystem by crafting malicious HTML in ticket content an...

CVE-2025-69271 is an insufficient credential protection vulnerability in Broadcom DX NetOps Spectrum that allows attackers to sniff network traffic an...

Broadcom DX NetOps Spectrum transmits sensitive information without encryption, allowing attackers on the same network to intercept credentials, confi...

This vulnerability allows attackers to bypass authentication mechanisms in Broadcom DX NetOps Spectrum, potentially gaining unauthorized access to net...

This vulnerability in Apache NimBLE allows an attacker to downgrade encrypted Bluetooth Low Energy connections to unencrypted state after a Pause Encr...

A NULL pointer dereference vulnerability in Apache NimBLE's Bluetooth stack occurs when HCI connection completion or command transmission buffers lack...

ComfyUI-Manager extension versions before 3.39.2 and 4.0.5 contain an injection vulnerability where attackers can manipulate HTTP query parameters to ...

A critical vulnerability in RustCrypto's SM2 Public Key Encryption implementation generates ephemeral nonces with only 32 bits of entropy instead of t...

This vulnerability in RustCrypto's elliptic-curves library allows attackers to cause denial-of-service by sending specially crafted SM2 encrypted mess...

A denial-of-service vulnerability exists in RustCrypto's SM2 public-key encryption implementation where untrusted ciphertext can trigger bounds-check ...

This vulnerability in Yonyou YonBIP allows attackers to bypass normal directory restrictions via path traversal in the LoginWithV8 interface, potentia...

A vulnerability in Hero Motocorp Vida V1 Pro 2.0.7 allows local attackers to cause denial of service via the Bluetooth Low Energy (BLE) component. Thi...

FluidSynth versions 2.4.6 and earlier contain a null pointer dereference vulnerability in fluid_synth_monopoly.c that can be triggered by loading a sp...

Vivotek IP7137 cameras with firmware version 0200a allow unauthenticated access to live RTSP video feeds on port 8554. This affects all users of these...

This CVE describes an unauthenticated SQL injection vulnerability in Zenitel products that allows attackers to inject SQL queries via GET request para...

This vulnerability allows external applications to bypass security controls and directly launch Gmail with inbox access by exploiting an exported Acti...

This vulnerability in OPEXUS eComplaint allows unauthenticated attackers to download sensitive files by guessing predictable charge numbers. It affect...

This CVE describes a PHP Local File Inclusion vulnerability in the G5Theme Handmade Framework WordPress plugin. Attackers can include arbitrary local ...

A vulnerability in Technitium DNS Server v13.5 allows remote attackers to trigger a denial of service condition by exploiting the rate-limiting compon...